Privacy Policy

digital movements GmbH Privacy Policy

Your privacy is important to us. It is digital movements GmbH’s policy to respect your privacy and to comply with any applicable law and regulation regarding any personal information we may collect about you, including across our website, https://digitalmovements.de, and other sites we own and operate.

Personal information is any information about you which can be used to identify you. This includes information about you as a person (such as name, address, or date of birth), your devices and even information about how you use a website or online service.

In the event our site contains links to third-party sites and services, please be aware that those sites and services have their own privacy policies. After following a link to any third-party content, you should read their posted privacy policy information about how they collect and use personal information. This Privacy Policy does not apply to any of your activities after you leave our site.

This policy is effective as of February 4, 2025

Last updated: February 5, 2025

Information We Collect

Information we collect falls into one of two categories: “voluntarily provided” information and “automatically collected” information.

“Voluntarily provided” information refers to any information you knowingly and actively provide us when using or participating in any of our services and promotions.

“Automatically collected” information refers to any information automatically sent by your devices in the course of accessing our products and services.

Log Data

When you visit our website, our servers may automatically log the standard data provided by your web browser. It may include your device’s Internet Protocol (IP) address, your browser type and version, the pages you visit, the time and date of your visit, the time spent on each page, and other details about your visit.

Additionally, if you encounter certain errors while using the site, we may automatically collect data about the error and the circumstances surrounding its occurrence. This data may include technical details about your device, what you were trying to do when the error happened, and other technical information relating to the problem. You may or may not receive notice of such errors, even in the moment they occur, that they have occurred, or what the nature of the error is.

Please be aware that while this information may not be personally identifying by itself, it may be possible to combine it with other data to personally identify individual persons.

Device Data

When you visit our website or interact with our services, we may automatically collect data about your device, such as device type and operating system.

Data we collect can depend on the individual settings of your device and software. We recommend checking the policies of your device manufacturer or software provider to learn what information they make available to us.

Personal Information

We may ask for personal information — for example, when you subscribe to our newsletter or when you contact us — which may include one or more of the following:

• Name
• Email
• Phone/mobile number
• Company name

Legitimate Reasons for Processing Your Personal Information

We only collect and use your personal information when we have a legitimate reason for doing so. In which instance, we only collect personal information that is reasonably necessary to provide our services to you.

Collection and Use of Information

We may collect personal data from you when you perform any of the following actions on our website:

• Sign up to our newsletter to receive regular news and information from us by email
• Access our content using a mobile device or web browser
• You contact us via our contact form

We may collect, hold, use, and disclose information for the following purposes, and personal information will not be further processed in a manner that is incompatible with these purposes:

• to provide you with our platform’s core features and services
• to contact and communicate with you
• for advertising and marketing, including to send you promotional information about our products and services and information about third parties that we consider may be of interest to you

Security of Your Personal Information

When we collect and process personal information, and while we retain this information, we will protect it within commercially acceptable means to prevent loss and theft, as well as unauthorized access, disclosure, copying, use or modification.

How Long We Keep Your Personal Information

We keep your personal information only for as long as we need to. This time period may depend on what we are using your information for, in accordance with this privacy policy. For example, if you have provided us with personal information such as an email address when contacting us about a specific enquiry, we may retain this information for the duration of your enquiry remaining open as well as for our own records so we may effectively address similar enquiries in future. If your personal information is no longer required for this purpose, we will delete it or make it anonymous by removing all details that identify you.

However, if necessary, we may retain your personal information for our compliance with a legal, accounting, or reporting obligation or for archiving purposes in the public interest.

Privacy of children and young people

Our products and services are aimed exclusively at companies and therefore not directly at children and young people under the age of 16, and we do not knowingly collect personal data from children and young people under the age of 16.

Disclosure of Personal Information to Third Parties

We may disclose personal information to:

• a parent, subsidiary or affiliate of our company
• third-party service providers for the purpose of enabling them to provide their services, including (without limitation) IT service providers, data storage, hosting and server providers, ad networks, analytics, error loggers, debt collectors, maintenance or problem-solving providers, marketing providers, professional advisors, and payment systems operators
• our employees, contractors, and/or related entities
• our existing or potential agents or business partners
• credit reporting agencies, courts, tribunals, and regulatory authorities, in the event you fail to pay for goods or services we have provided to you
• courts, tribunals, regulatory authorities, and law enforcement officers, as required by law, in connection with any actual or prospective legal proceedings, or in order to establish, exercise, or defend our legal rights
• third parties, including agents or sub-contractors who assist us in providing information, products, services, or direct marketing to you
• third parties to collect and process data
• an entity that buys, or to which we transfer all or substantially all of our assets and business

International Transfers of Personal Information

The personal data collected by us is primarily stored and/or processed on servers within the EU and on servers in the USA if this is permitted under an adequacy decision of the EU Commission (Art. 45 GDPR, para. 3).

The countries to which we store, process, or transfer your personal information may not have the same data protection laws as the country in which you initially provided the information. If we transfer your personal information to third parties in other countries: (i) we will perform those transfers in accordance with the requirements of applicable law; and (ii) we will protect the transferred personal information in accordance with this privacy policy.

Your Rights and Controlling Your Personal Information

Your choice: By providing personal information to us, you understand we will collect, hold, use, and disclose your personal information in accordance with this privacy policy. You do not have to provide personal information to us, however, if you do not, it may affect your use of our website or the products and/or services offered on or through it.

Information from third parties: If we receive personal information about you from a third party, we will protect it as set out in this privacy policy. If you are a third party providing personal information about somebody else, you represent and warrant that you have such person’s consent to provide the personal information to us.

Marketing permission: If you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by contacting us using the details below.

Access: You may request details of the personal information that we hold about you.

Correction: If you believe that any information we hold about you is inaccurate, out of date, incomplete, irrelevant, or misleading, please contact us using the details provided in this privacy policy. We will take reasonable steps to correct any information found to be inaccurate, incomplete, misleading, or out of date.

Non-discrimination: We will not discriminate against you for exercising any of your rights over your personal information. Unless your personal information is required to provide you with a particular service or offer (for example providing user support), we will not deny you goods or services and/or charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties, or provide you with a different level or quality of goods or services.

Notification of data breaches: We will comply with laws applicable to us in respect of any data breach.

Complaints: If you believe that we have breached a relevant data protection law and wish to make a complaint, please contact us using the details below and provide us with full details of the alleged breach. We will promptly investigate your complaint and respond to you, in writing, setting out the outcome of our investigation and the steps we will take to deal with your complaint. You also have the right to contact a regulatory body or data protection authority in relation to your complaint.

Unsubscribe: To unsubscribe from our email database or opt-out of communications (including marketing communications), please contact us using the details provided in this privacy policy, or opt-out using the opt-out facilities provided in the communication. We may need to request specific information from you to help us confirm your identity.

Business Transfers

If we or our assets are acquired, or in the unlikely event that we go out of business or enter bankruptcy, we would include data, including your personal information, among the assets transferred to any parties who acquire us. You acknowledge that such transfers may occur, and that any parties who acquire us may, to the extent permitted by applicable law, continue to use your personal information according to this policy, which they will be required to assume as it is the basis for any ownership or use rights we have over such information.

Limits of Our Policy

Our website may link to external sites that are not operated by us. Please be aware that we have no control over the content and policies of those sites, and cannot accept responsibility or liability for their respective privacy practices.

Changes to This Policy

At our discretion, we may change our privacy policy to reflect updates to our business processes, current acceptable practices, or legislative or regulatory changes. If we decide to change this privacy policy, we will post the changes here at the same link by which you are accessing this privacy policy.

If required by law, we will get your permission or give you the opportunity to opt in to or opt out of, as applicable, any new uses of your personal information.

Data Controller / Data Processor

The GDPR distinguishes between organisations that process personal information for their own purposes (known as “data controllers”) and organisations that process personal information on behalf of other organisations (known as “data processors”). We, digital movements GmbH, located at the address provided in our “Contact Us” section, are a Data Controller with respect to the personal information you provide to us.

Legal Bases for Processing Your Personal Information

We will only collect and use your personal information when we have a legal right to do so. In which case, we will collect and use your personal information lawfully, fairly, and in a transparent manner. Please note that our services are only aimed at companies and in particular not at children and young people under the age of 16.

Our lawful bases depend on the services you use and how you use them. This means we only collect and use your information on the following grounds:

Consent From You

Where you give us consent to collect and use your personal information for a specific purpose. You may withdraw your consent at any time using the facilities we provide; however this will not affect any use of your information that has already taken place. You may consent to providing your email address for the purpose of receiving marketing emails from us. While you may unsubscribe at any time, we cannot recall any email we have already sent. If you have any further enquiries about how to withdraw your consent, please feel free to enquire using the details provided in the Contact Us section of this privacy policy.

Performance of a Contract or Transaction

Where you have entered into a contract or transaction with us, or in order to take preparatory steps prior to our entering into a contract or transaction with you. For example, if you contact us with an enquiry, we may require personal information such as your name and contact details in order to respond.

Our Legitimate Interests

Where we assess it is necessary for our legitimate interests, such as for us to provide, operate, improve and communicate our services. We consider our legitimate interests to include research and development, understanding our audience, marketing and promoting our services, measures taken to operate our services efficiently, marketing analysis, and measures taken to protect our legal rights and interests.

Compliance with Law

In some cases, we may have a legal obligation to use or keep your personal information. Such cases may include (but are not limited to) court orders, criminal investigations, government requests, and regulatory obligations. If you have any further enquiries about how we retain personal information in order to comply with the law, please feel free to enquire using the details provided in the Contact Us section of this privacy policy.

International Transfers Outside of the European Economic Area (EEA)

We will ensure that any transfer of personal information from countries in the European Economic Area (EEA) to countries outside the EEA will be protected by appropriate safeguards, for example by using standard data protection clauses approved by the European Commission, or the use of binding corporate rules or other legally accepted means.

Your Rights and Controlling Your Personal Information

Restrict: You have the right to request that we restrict the processing of your personal information if (i) you are concerned about the accuracy of your personal information; (ii) you believe your personal information has been unlawfully processed; (iii) you need us to maintain the personal information solely for the purpose of a legal claim; or (iv) we are in the process of considering your objection in relation to processing on the basis of legitimate interests.

Objecting to processing: You have the right to object to processing of your personal information that is based on our legitimate interests or public interest. If this is done, we must provide compelling legitimate grounds for the processing which overrides your interests, rights, and freedoms, in order to proceed with the processing of your personal information.

Data portability: You may have the right to request a copy of the personal information we hold about you. Where possible, we will provide this information in CSV format or other easily readable machine format. You may also have the right to request that we transfer this personal information to a third party.

Deletion: You may have a right to request that we delete the personal information we hold about you at any time, and we will take reasonable steps to delete your personal information from our current records. If you ask us to delete your personal information, we will let you know how the deletion affects your use of our website or products and services. There may be exceptions to this right for specific legal reasons which, if applicable, we will set out for you in response to your request. If you terminate or delete your account, we will delete your personal information within 30 days of the deletion of your account. Please be aware that search engines and similar third parties may still retain copies of your personal information that has been made public at least once, like certain profile information and public comments, even after you have deleted the information from our services or deactivated your account.

Contact Us

For any questions or concerns regarding your privacy, you may contact us using the following details:

Alexander Reetz info@digitalmovements.de

CleverReach Newsletter and Contact Form

This website uses CleverReach to send newsletters and for the contact form. The provider is CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede, Germany. CleverReach enables the organization and analysis of the newsletter dispatch and the contact form. The data you provide to receive the newsletter or for the contact form (e.g. email address) is stored on CleverReach’s servers in Germany or Ireland.

The newsletters sent by CleverReach allow us to analyze the behavior of newsletter recipients. Among other things, it is possible to analyze how many recipients have opened the newsletter message and how often which link in the newsletter was clicked on. It is also possible to analyze whether a predefined action (e.g. a link to our website) was carried out after clicking on a link in the newsletter. If you do not wish to be analyzed by CleverReach, please do not order any newsletter sent by us or cancel an existing subscription, for which we provide a corresponding unsubscribe link in every newsletter.

The data processing for is based on your consent (Art. 6 para. 1 lit. a GDPR) or on legitimate interests (Art. 6 para. 1 lit. f GDPR), as we have a legitimate interest in the effective processing of the contact requests addressed to us. You can revoke your consent at any time or your data will be deleted by requesting us to delete it, revoking your consent to storage, unsubscribing from the newsletter or if the purpose of storage no longer exists. This does not affect the legality of the data processing carried out up to the time of revocation.

The data you provide us with for the newsletter mailing or for the contact request will be stored by us until you unsubscribe and then deleted both from our servers and from the CleverReach servers. Data stored by us for other purposes remains unaffected by this.

We have concluded a contract with CleverReach GmbH & Co. KG for commissioned data processing. This is a contract under data protection law that ensures that the data of our website visitors is only processed in accordance with our instructions and in compliance with the GDPR.

Weitere Details können Sie den Datenschutzbestimmungen von CleverReach entnehmen unter: https://www.cleverreach.com/de/datenschutz/.

Zeeg Appointment Booking

To facilitate appointments, our website uses the Zeeg appointment booking service. This service is provided by Zeeg GmbH, Friedrichstr. 114A, 10117 Berlin, Germany. When you book an appointment on our website, you will be redirected to the Zeeg website and Zeeg’s privacy policy will apply. While booking an appointment, certain personal data that is necessary to make the appointment is collected, which usually includes your name, your e-mail address and the reason for the meeting. This information is processed in order to carry out the appointment booking and then confirm it by e-mail.
Zeeg stores its data on servers in Europe. The transfer of personal data to Zeeg is based on a legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR, namely the efficient and simple organization of appointments. As a European company, Zeeg is subject to the GDPR and undertakes to comply with it.
We have concluded a contract with Zeeg GmbH for commissioned data processing. This is a contract under data protection law that ensures that the data of our website visitors is only processed in accordance with our instructions and in compliance with the GDPR.
Further information on data protection at Zeeg can be found in Zeeg’s privacy policy at https://zeeg.me/en/legal/privacy.

Google Firebase Hosting and Firebase Functions

We use Google Firebase Hosting and Firebase Functions from Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) to provide our website. Google processes personal data on the basis of a legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR, namely the efficient provision of our website. Further information can be found in Google’s privacy policy at https://policies.google.com/?hl=de.

Firebase Hosting is used for the provision and operation of the website. Firebase Hosting stores the files required to display the website (HTML, CSS, JavaScript, images) on servers and delivers them to your browser. Your IP address is processed and temporarily stored by Google to ensure the security and stability of the service. This storage takes place in Europe and in the USA and the IP data is stored for several months.

We have concluded an order processing agreement with Google LLC, in which Google LLC undertakes to comply with European data protection regulations as an order processor. Further information on this can be found at https://firebase.google.com/terms/data-processing-terms. EU standard contractual clauses have been agreed with Google as the legal basis for the transfer of personal data: https://firebase.google.com/terms/firebase-sccs. The individual services are described in detail in the subsections.

When using Firebase, personal data is collected and processed. This Firebase service data includes, for example, information about service usage, resource identifiers such as application IDs and package names/bundle IDs, technical and operational details of usage such as IP addresses and direct communication with developers from feedback and support-related conversations.

Google Tag Manager

We use Google Tag Manager from Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). Google Tag Manager is used to manage tags that are used to retrieve or store cookies or to analyze visitor data. Google Tag Manager stores the data required to analyze visitor data on servers in Europe and the USA.

We have concluded an order processing agreement with Google LLC, in which Google LLC undertakes to comply with European data protection regulations as the processor. EU standard contractual clauses have been agreed with Google as the legal basis for the transfer of personal data. The individual services are described in detail in the subsections.

Further information can be found in Google’s privacy policy at https://policies.google.com/?hl=de.

Google Re-Captcha

We use the Google service reCaptcha to determine whether a human or a computer is making a certain entry in our contact or newsletter form. Google uses the following data to check whether you are a human or a computer IP address of the end device used, the website that you visit on our site and on which the captcha is integrated, the date and duration of the visit, the identification data of the browser and operating system type used, Google account if you are logged in to Google, mouse movements on the reCaptcha areas and tasks in which you have to identify images. The legal basis for the data processing described is Article 6(1)(f) of the General Data Protection Regulation. We have a legitimate interest in this data processing to ensure the security of our website and to protect us from automated entries (attacks).

Cookie Consent

Consent to the use of cookies.

For our website to function properly we use cookies. To obtain your valid consent for the use and storage of cookies in the browser you use to access our website and to properly document this we use a consent management platform: CookieFirst. This technology is provided by Digital Data Solutions BV, Plantage Middenlaan 42a, 1018 DH, Amsterdam, The Netherlands. Website: https://cookiefirst.com referred to as CookieFirst.

When you access our website, a connection is established with CookieFirst’s server to give us the possibility to obtain valid consent from you to the use of certain cookies. CookieFirst then stores a cookie in your browser in order to be able to activate only those cookies to which you have consented and to properly document this. The data processed is stored until the predefined storage period expires or you request to delete the data. Certain mandatory legal storage periods may apply notwithstanding the aforementioned.

CookieFirst is used to obtain the legally required consent for the use of cookies. The legal basis for this is article 6(1)(c) of the General Data Protection Regulation (GDPR).

Data processing agreement

We have concluded a data processing agreement with CookieFirst. This is a contract required by data protection law, which ensures that data of our website visitors is only processed in accordance with our instructions and in compliance with the GDPR.

Server log files

Our website and CookieFirst automatically collect and store information in so-called server log files, which your browser automatically transmits to us. The following data is collected: -Your consent status or the withdrawal of consent -Your anonymised IP address -Information about your Browser -Information about your Device -The date and time you have visited our website -The webpage url where you saved or updated your consent preferences -The approximate location of the user that saved their consent preference -A universally unique identifier (UUID) of the website visitor that clicked the cookie banner